Minor improve in error messages and tests

2015-06-09 15:58:13 +02:00 · 2015-06-09 15:58:13 +02:00 · 9a5ca4d367
commit 9a5ca4d367
parent e4cb97aa49
4 changed files with 164 additions and 120 deletions
--- a/services/src/main/java/org/keycloak/protocol/oidc/endpoints/TokenEndpoint.java
+++ b/services/src/main/java/org/keycloak/protocol/oidc/endpoints/TokenEndpoint.java
@ -151,7 +151,7 @@ public class TokenEndpoint {
            if (legacyGrantType != null) {
                grantType = legacyGrantType;
            } else {
-                throw new ErrorResponseException("invalid_request", "Missing query parameter: " + OIDCLoginProtocol.GRANT_TYPE_PARAM, Response.Status.BAD_REQUEST);
+                throw new ErrorResponseException("invalid_request", "Missing form parameter: " + OIDCLoginProtocol.GRANT_TYPE_PARAM, Response.Status.BAD_REQUEST);
            }
        }

--- a/services/src/main/java/org/keycloak/protocol/oidc/utils/AuthorizeClientUtil.java
+++ b/services/src/main/java/org/keycloak/protocol/oidc/utils/AuthorizeClientUtil.java
@ -39,7 +39,7 @@ public class AuthorizeClientUtil {
        if (client_id == null) {
            Map<String, String> error = new HashMap<String, String>();
            error.put(OAuth2Constants.ERROR, "invalid_client");
-            error.put(OAuth2Constants.ERROR_DESCRIPTION, "Could not find client");
+            error.put(OAuth2Constants.ERROR_DESCRIPTION, "Missing client_id parameter");
            throw new BadRequestException("Could not find client", Response.status(Response.Status.BAD_REQUEST).entity(error).type(MediaType.APPLICATION_JSON_TYPE).build());
        }

--- a/testsuite/integration/src/test/java/org/keycloak/testsuite/OAuthClient.java
+++ b/testsuite/integration/src/test/java/org/keycloak/testsuite/OAuthClient.java
@ -28,6 +28,7 @@ import org.apache.http.client.HttpClient;
 import org.apache.http.client.entity.UrlEncodedFormEntity;
 import org.apache.http.client.methods.HttpPost;
 import org.apache.http.client.utils.URLEncodedUtils;
+import org.apache.http.impl.client.CloseableHttpClient;
 import org.apache.http.impl.client.DefaultHttpClient;
 import org.apache.http.message.BasicNameValuePair;
 import org.json.JSONObject;
@ -113,7 +114,8 @@ public class OAuthClient {
    }

    public AccessTokenResponse doAccessTokenRequest(String code, String password) {
-        HttpClient client = new DefaultHttpClient();
+        CloseableHttpClient client = new DefaultHttpClient();
+        try {
            HttpPost post = new HttpPost(getAccessTokenUrl());

            List<NameValuePair> parameters = new LinkedList<NameValuePair>();
@ -128,8 +130,7 @@ public class OAuthClient {
            if (clientId != null && password != null) {
                String authorization = BasicAuthHelper.createHeader(clientId, password);
                post.setHeader("Authorization", authorization);
-        }
-        else if (clientId != null) {
+            } else if (clientId != null) {
                parameters.add(new BasicNameValuePair(OAuth2Constants.CLIENT_ID, clientId));
            }

@ -154,10 +155,14 @@ public class OAuthClient {
            } catch (Exception e) {
                throw new RuntimeException("Failed to retrieve access token", e);
            }
+        } finally {
+            closeClient(client);
+        }
    }

    public AccessTokenResponse doGrantAccessTokenRequest(String clientSecret, String username,  String password) throws Exception {
-        HttpClient client = new DefaultHttpClient();
+        CloseableHttpClient client = new DefaultHttpClient();
+        try {
            HttpPost post = new HttpPost(getResourceOwnerPasswordCredentialGrantUrl());

            String authorization = BasicAuthHelper.createHeader(clientId, clientSecret);
@ -184,10 +189,14 @@ public class OAuthClient {
            post.setEntity(formEntity);

            return new AccessTokenResponse(client.execute(post));
+        } finally {
+            closeClient(client);
+        }
    }

    public HttpResponse doLogout(String refreshToken, String clientSecret) throws IOException {
-        HttpClient client = new DefaultHttpClient();
+        CloseableHttpClient client = new DefaultHttpClient();
+        try {
            HttpPost post = new HttpPost(getLogoutUrl(null, null));

            List<NameValuePair> parameters = new LinkedList<NameValuePair>();
@ -197,8 +206,7 @@ public class OAuthClient {
            if (clientId != null && clientSecret != null) {
                String authorization = BasicAuthHelper.createHeader(clientId, clientSecret);
                post.setHeader("Authorization", authorization);
-        }
-        else if (clientId != null) {
+            } else if (clientId != null) {
                parameters.add(new BasicNameValuePair(OAuth2Constants.CLIENT_ID, clientId));
            }

@ -211,10 +219,14 @@ public class OAuthClient {
            post.setEntity(formEntity);

            return client.execute(post);
+        } finally {
+            closeClient(client);
+        }
    }

    public AccessTokenResponse doRefreshTokenRequest(String refreshToken, String password) {
-        HttpClient client = new DefaultHttpClient();
+        CloseableHttpClient client = new DefaultHttpClient();
+        try {
            HttpPost post = new HttpPost(getRefreshTokenUrl());

            List<NameValuePair> parameters = new LinkedList<NameValuePair>();
@ -226,8 +238,7 @@ public class OAuthClient {
            if (clientId != null && password != null) {
                String authorization = BasicAuthHelper.createHeader(clientId, password);
                post.setHeader("Authorization", authorization);
-        }
-        else if (clientId != null) {
+            } else if (clientId != null) {
                parameters.add(new BasicNameValuePair(OAuth2Constants.CLIENT_ID, clientId));
            }

@ -251,6 +262,17 @@ public class OAuthClient {
            } catch (Exception e) {
                throw new RuntimeException("Failed to retrieve access token", e);
            }
+        } finally {
+            closeClient(client);
+        }
+    }
+
+    private void closeClient(CloseableHttpClient client) {
+        try {
+            client.close();
+        } catch (IOException ioe) {
+            throw new RuntimeException(ioe);
+        }
    }

    public AccessToken verifyToken(String token) {
--- a/testsuite/integration/src/test/java/org/keycloak/testsuite/oauth/ResourceOwnerPasswordCredentialsGrantTest.java
+++ b/testsuite/integration/src/test/java/org/keycloak/testsuite/oauth/ResourceOwnerPasswordCredentialsGrantTest.java
@ -1,6 +1,10 @@
 package org.keycloak.testsuite.oauth;

 import org.apache.http.HttpResponse;
+import org.apache.http.client.HttpClient;
+import org.apache.http.client.methods.HttpPost;
+import org.apache.http.impl.client.CloseableHttpClient;
+import org.apache.http.impl.client.DefaultHttpClient;
 import org.junit.ClassRule;
 import org.junit.Rule;
 import org.junit.Test;
@ -203,4 +207,22 @@ public class ResourceOwnerPasswordCredentialsGrantTest {
                .assertEvent();
    }

+    @Test
+    public void grantAccessTokenMissingGrantType() throws Exception {
+        oauth.clientId("resource-owner");
+
+        DefaultHttpClient client = new DefaultHttpClient();
+        try {
+            HttpPost post = new HttpPost(oauth.getResourceOwnerPasswordCredentialGrantUrl());
+            OAuthClient.AccessTokenResponse response = new OAuthClient.AccessTokenResponse(client.execute(post));
+
+            assertEquals(400, response.getStatusCode());
+
+            assertEquals("invalid_request", response.getError());
+            assertEquals("Missing form parameter: grant_type", response.getErrorDescription());
+        } finally {
+            client.close();
+        }
+    }
+
 }